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REMARKS 

In the Office Action, the Examiner rejects claims 1-28, 34-42, and 44-53 under 35 
U.S.C. § 102(e) as allegedly being anticipated by WEBB et al. (U.S. Patent Application 
Publication No. 2002/0083342). Applicants respectfully traverse this rejection. 

By the present amendment, Applicants cancel claims 3, 36, and 51-53 without 
prejudice or disclaimer and amend claims 1, 2, 4-28, 34, 35, 37-42, and 44-50 to improve 
form. No new matter has been added by way of the present amendment. Claims 1,2,4- 
28, 34, 35, 37-42, and 44-50 are pending. 

At the outset, a telephone interview was conducted between Examiner Halim and 
Applicants' representative on December 15, 2008. Applicants would like to thank 
Examiner Trujillo for the courtesies extended during the interview. During the interview, 
the finality of the Office Action dated October 17, 2008 was discussed. In particular, it 
was discussed the WEBB et al. patent application was used for the first time to reject 
claims that had not previously been amended. Therefore, it was concluded that the 
finality of the Office Action dated October 17, 2008 is improper. As a result, Applicants 
request withdrawal of the finality of the Office Action. 

REJECTION UNDER 35 U.S.C. § 102(e) BASED ON WEBB ET AL. 

Pending claims 1, 2, 4-28, 34, 35, 37-42, and 44-50 stand rejected under 35 
U.S.C. § 102(e) based on WEBB et al. Applicants respectfully traverse this rejection. 

A proper rejection under 35 U.S.C. § 102 requires that a single reference disclose 
every aspect of the claimed invention. Any feature not directly taught must be inherently 
present. See M.P.E.P. § 2131. WEBB et al. does not disclose the combination of 
features recited in claims 1, 2, 4-28, 34, 35, 37-42, and 44-50. 
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For example, amended claim 1 recites a method for accessing resources on a 
private network via an intermediary server. The method comprises receiving a login 
request from a user for access to the intermediary server; accessing an external 
authentication server to authenticate the user in response to the login request; receiving a 
resource request from the authenticated user at the intermediary server, the resource 
request requesting a particular operation with respect to a resource from the private 
network; obtaining access privileges for the authenticated user in response to the resource 
request; determining if the access privileges for the authenticated user permit the 
authenticated user to perform the particular operation at the private network; and 
preventing, by the intermediary server, performance of the particular operation at the 
private network if the access privileges for the authenticated user do not permit the 
authenticated user to perform the particular operation at the private network. WEBB et 
al. does not disclose or suggest this combination of features. 

For example, WEBB et al. does not disclose or suggest accessing an external 
authentication server to authenticate the user in response to the login request, as recited in 
amended claim 1. A similar feature was previously presented in claim 3. The Examiner 
relies on Fig. 4 and paragraph 0047 of WEBB et al. as allegedly disclosing this feature of 
claim 1 (Office Action, pg. 6). Applicants respectfully disagree with the Examiner's 
interpretation of WEBB et al. 

At paragraph 0047, which describes Fig. 4, WEBB et al. discloses: 

Referring now to FIG. 4, operations for accessing one or more devices on a 
private network via a client on a public network, according to embodiments of 
the present invention, are illustrated. A user, via a client on a public network, 
accesses a Web page of a gateway connected to a private network and receives a 
log-in prompt (Block 200). The gateway accepts the user's log-in request, which 
includes an identification of the user and, preferably, a password (Block 210). A 
determination is made whether the user is authorized to access any of the devices 
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on the private network (Block 220). If the user is an authorized user, the gateway 
ascertains the rights of the user to access devices on the private network (Block 
230). If the user is not an authorized user, operations may terminate. The user 
will be required to submit an authorized log-in request before operations can 
continue. 

This section of WEBB et al. discloses determining whether a user is authorized to access 
a device on a private network based on a user's log-in request and a password. WEBB et 
al. does not disclose accessing an external authentication server to authenticate the user. 
WEBB et al. discloses that the determination of whether the user is authorized is made at 
the gateway. The Examiner appears to rely on the gateway of WEBB et al. as 
corresponding to the intermediate server of claim 1 . Therefore, the gateway of WEBB et 
al. cannot correspond to the external authentication server of claim 1. Therefore, WEBB 
et al. does not disclose or suggest accessing an external authentication server to 
authenticate the user in response to the login request, as recited in amended claim 1 . 

For at least the foregoing reason, Applicants submit that claim 1 is not anticipated 
by WEBB et al. 

Claims 2 and 4-18 depend from claim 1. Therefore, these claims are not 
anticipated by WEBB et al. for at least the reasons given above with respect to claim 1 . 
Moreover, these claims recite additional features not disclosed or suggested by WEBB et 
al. 

For example, claim 4 recites that the external authentication server is within the 
private network. The Examiner relies on Fig. 4 and paragraph 0047 of WEBB et al. as 
allegedly disclosing this feature of claim 4 (Office Action, pg. 6). Applicants respectfully 
disagree with the Examiner's interpretation of WEBB et al. 

As noted above, paragraph 0047 of WEBB et al. describes Fig. 4 and discloses 
determining whether a user is authorized to access a device on a private network based on 
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a user's log-in request and a password. WEBB et al. does not disclose an external 

authentication server. Instead, WEBB et al. discloses that the determination of whether 

the user is authorized is made at the gateway. Therefore, this section of WEBB et al. 

does not disclose or suggest that the external authentication server is within the private 

network, as recited in claim 4. 

For at least these additional reasons, Applicants submit that claim 4 is not 
anticipated by WEBB et al. 

Claim 6 recites that the intermediate server stores an authentication identifier for 
each of a plurality of users, the authentication identifier identifying the external 
authentication server to be used. The Examiner relies on the abstract and summary of 
WEBB ct al. as allegedly disclosing this feature of claim 6 (Office Action, pg. 6). 
Applicants respectfully disagree with the Examiner's interpretation of WEBB et al. 

In the abstract, WEBB et al. discloses: 

Systems, methods, and computer program products that can allow users to access 
one or more devices on a private network, via clients on a public network, are 
provided. A gateway on a private network accepts a user log-in request from a 
client on a public network. The rights of the user to access one or more devices 
on the private network are ascertained and the gateway serves a Web page to the 
client that identifies each device on the private network for which the user has 
access rights. Upon receiving a request from the client to access a Web server of a 
device on a private network, the gateway redirects the received client request to 
the Web server. The gateway is configured to "scrub" a Web page served by a 
device Web server to remove any links to Web servers of devices for which the 
user does not have access rights and to modify a uniform resource locator (URL) 
containing an address not valid on the public network with an address that is valid 
on the public network. 

This section of WEBB et al. discloses that a gateway on a private network accepts a user 
log-in request from a client on a public network and serves a Web page to the client that 
identifies each device on the private network for which the user has access rights after the 
rights of the user are ascertained. This section of WEBB et al. discloses that the gateway 
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ascertains the rights of the user. This section of WEBB et al. does not disclose the 

external authentication server. Furthermore, this section of WEBB et al. does not 

disclose or suggest an authentication identifier that identifies an external authentication 

server. Therefore, this section of WEBB et al. does not disclose or suggest that the 

intermediate server stores an authentication identifier for each of a plurality of users, the 

authentication identifier identifying the external authentication server to be used, as 

recited in claim 6. 

In the Summary of the Invention section, at paragraphs 0008-0014, WEBB et al. 
discloses that the gateway of a private network ascertains the rights of a user to access 
devices on the private network (paragraph 0008). This section of WEBB et al. does not 
disclose or suggest using an external authentication server to perform the authenticating. 
Therefore, this section of WEBB et al. does not disclose or suggest that the intermediate 
server stores an authentication identifier for each of a plurality of users, the authentication 
identifier identifying the external authentication server to be used, as recited in claim 6. 

For at least these additional reasons, Applicants submit that claim 6 is not 
anticipated by WEBB et al. 

Independent claims 19, 34, and 44 recite features similar to (yet possibly of 
different scope than) features recited above with respect to claim 1 . Therefore, 
Applicants submit that claims 19, 34, and 44 are not anticipated by WEBB et al. for at 
least reasons similar to reasons given above with respect to claim 1 . 

Claims 20-28 depend from claim 19. Therefore, these claims are not anticipated 
by WEBB et al. for at least the reasons given above with respect to claim 19. 
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Claims 35-42 depend from claim 34. Therefore, these claims are not anticipated 
by WEBB et al. for at least the reasons given above with respect to claim 34. Moreover, 
these claims recite additional features not disclosed or suggested by WEBB et al. 

For example, claim 37 recites features similar to, yet possibly of different scope 
than, features recited above with respect to claim 6. Therefore, claim 37 is not 
anticipated by WEBB et al. for at least reasons similar to the reasons given above with 
respect to claim 6. 

Claims 45-50 depend from claim 44. Therefore, these claims are not anticipated 
by WEBB et al. for at least the reasons given above with respect to claim 44. 
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CONCLUSION 

In view of the foregoing amendments and remarks, Applicants respectfully 
request the reconsideration and allowance of the present application. 

As Applicants' remarks with respect to the Examiner's rejections overcome the 
rejections, Applicants' silence as to certain assertions by the Examiner in the Office 
Action or certain requirements that may be applicable to such rejections (e.g., whether a 
reference constitutes prior art, assertions as to dependent claims, etc.) is not a concession 
by Applicants that such assertions are accurate or that such requirements have been met, 
and Applicants reserve the right to dispute these assertions/requirements in the future. 

To the extent necessary, a petition for an extension of time under 37 C.F.R. § 
1 . 136 is hereby made. Please charge any shortage in fees due in connection with the 
filing of this paper, including extension of time fees, to Deposit Account No. 50-1070 
and please credit any excess fees to such deposit account. 

Respectfully submitted, 
Harrity & Harrity, LLP 

By: /Meagan S. Walling. Reg. No. 60,112/ 
Meagan S. Walling 
Registration No. 60,112 

Date: January 21, 2009 

1 1350 Random Hills Road 
Suite 600 

Fairfax, Virginia 22030 
(571)432-0800 

Customer Number: 44987 
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